Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/TD2WMpb_CXX2TxlVsobjq7HybKs.roa
File: TD2WMpb_CXX2TxlVsobjq7HybKs.roa (raw, json)
Hash identifier: vVd8Wd7ydvX5s0nLdFdAuvfP0Bg+9Us8/EZ49J80dPQ=
Subject key identifier: 4C:3D:96:32:96:FF:09:75:F6:4F:19:55:B2:86:E3:AB:B1:F2:6C:AB
Certificate issuer: /CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Certificate serial: 0185734CDB8C2C9DB4042A16CFFB96112354
Authority key identifier: 2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/TD2WMpb_CXX2TxlVsobjq7HybKs.roa
Signing time: Mon 02 Jan 2023 16:24:54 +0000
ROA not before: Mon 02 Jan 2023 16:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25309
IP address blocks: 194.116.99.0/24 maxlen: 24
2001:7f8:23::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:db:8c:2c:9d:b4:04:2a:16:cf:fb:96:11:23:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Validity
Not Before: Jan 2 16:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c3d963296ff0975f64f1955b286e3abb1f26cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:64:7c:75:10:a7:d8:99:3b:d8:39:4d:36:
cc:30:00:31:34:2b:4e:ea:03:51:cc:b8:bb:bd:ed:
d2:d9:cf:c9:7d:c8:a5:b0:13:cd:0d:c7:c8:f8:5e:
a8:90:d2:91:d4:04:51:fa:ed:04:41:ef:d1:54:90:
59:f0:4e:c4:b7:9b:7d:e5:aa:33:44:ca:20:43:0e:
65:6a:66:4d:a8:78:52:08:25:49:bc:0d:84:d6:a3:
ae:9e:23:fd:f9:7b:93:e3:f2:c8:7d:5d:bc:a5:da:
0a:ab:6b:85:9e:9b:66:41:76:14:20:31:7c:df:6a:
8e:f3:2d:77:e7:8d:fa:05:52:e8:d6:75:07:d1:b7:
11:72:bd:94:56:c5:e1:23:9b:26:eb:26:d0:94:ef:
f2:b1:e2:0c:bd:07:71:40:75:b4:9c:7e:72:7a:ae:
87:15:21:08:42:6d:3e:70:4d:e3:db:99:9c:97:e2:
e4:97:9d:26:b6:ca:4c:80:16:f2:03:fa:52:49:f8:
ae:3c:18:2b:14:6f:0a:b1:3e:36:3a:a5:5d:b8:44:
32:13:a8:ec:07:db:a1:e8:cc:8d:6c:ca:dd:4e:56:
ba:e5:8d:b5:6e:f3:b0:6d:d5:e4:33:54:a1:d4:61:
a5:a9:56:81:23:2f:36:ff:b5:8a:8f:c3:58:db:f2:
36:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3D:96:32:96:FF:09:75:F6:4F:19:55:B2:86:E3:AB:B1:F2:6C:AB
X509v3 Authority Key Identifier:
keyid:2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/TD2WMpb_CXX2TxlVsobjq7HybKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/LIhzAtHnQPX5hIH7S3pGFpa_5cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.99.0/24
IPv6:
2001:7f8:23::/48
Signature Algorithm: sha256WithRSAEncryption
77:69:14:df:61:98:37:0e:78:91:89:1e:05:db:12:e6:78:bd:
e8:32:dc:af:e7:d8:fe:fb:17:48:cc:99:c0:70:fe:4f:b6:3d:
96:9b:a2:6d:10:fd:01:a9:3f:1a:97:ae:8e:78:90:ac:10:3c:
99:34:ed:9d:28:15:9b:6b:b5:3e:66:d0:74:87:57:ed:28:8a:
70:a5:48:0f:31:74:93:f1:ad:b3:84:7d:bc:a5:f5:bc:5a:3c:
b9:24:89:5e:43:e6:22:62:36:97:25:6b:06:de:bc:bd:fd:9a:
7b:8f:2f:bc:f9:3e:8b:ee:7d:b7:85:a4:47:b4:e1:f9:03:31:
26:75:59:7c:2e:e3:0d:b6:99:39:32:2f:5c:4a:a6:d1:6a:35:
f6:3c:b9:9c:74:02:a7:da:0e:56:1c:20:80:35:05:54:e1:02:
dc:50:3f:1b:ae:16:26:26:1c:b3:60:29:57:9f:24:fb:6b:19:
02:49:9a:da:5e:b8:c4:90:f2:a6:d0:62:a9:f7:c9:7e:ae:36:
fd:66:dc:2b:11:b8:74:36:81:9a:2d:bf:90:3e:5a:9c:82:0e:
e2:71:59:65:3a:50:5a:a2:bc:88:b3:e5:d0:1a:0e:21:b9:a8:
a6:df:0e:27:6f:52:53:bb:4d:2f:52:61:b5:d9:a4:c9:53:c2:
b3:c0:11:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:13 2024 by rpki-client on console-fra.rpki-client.org